Message-Id: <199709252139.OAA01908@mailhost2.cac.washington.edu> From: "James W DeRoest" <deroest@cac.washington.edu> To: "AST Webpage" <astweb@u.washington.edu> Subject: SMB and kerberos passwd Date: Thu, 25 Sep 1997 14:39:24 -0700
-----Original Message----- Date: Thu, 25 Sep 1997 11:17:26 -0700 (PDT) From: Steven Jones <noyd@u.washington.edu> Subject: Re: kerberos
I've changed the bud.cac SMB server to try all combinations of upper and lower letters when validating the W95 domain logon. This about doubles the time to process an invalid password, but will allow those few folks with more than 4 uppercase letters in their passwords to logon.
Eight character bad password 22 seconds Seven character bad password 12 seconds Six character bad password 5 seconds
Assuming the processing of bad passwords puts the computer at a saturation point, we can expect that the validation server can readily handle 60 valid logins per minute, assuming an average of 2-3 uppercase letters per password.
Empirical evidence from the bud.cac log shows we had a peak of 35 logons (see below) for the minute of 09:52 this morning. That being measured by combining the FTP logons with the SMB logons where the SMB logons actually logon four times for each session. The peak at 9:52 is actually reflective of ten W95 logon validations: tman, guntharr, zephyrmc, lwinn, fnord, tanis, spino, valis, jerome, saur with some minor overlap to 9:51 and 9:53.
No. Date Time ---- ------ ----- 35 Sep 25 09:52 33 Sep 25 09:28 30 Sep 25 09:57 27 Sep 25 09:51 26 Sep 25 09:56 24 Sep 25 09:27 24 Sep 23 11:47 23 Sep 24 08:31 23 Sep 23 13:36 22 Sep 23 11:48 22 Sep 23 10:08 21 Sep 23 10:23 20 Sep 23 11:31 20 Sep 23 09:40 19 Sep 23 13:37 16 Sep 24 10:50 16 Sep 23 11:30 15 Sep 25 09:29 15 Sep 23 14:55 15 Sep 23 10:15 14 Sep 25 08:53 14 Sep 24 13:00 14 Sep 23 14:18
-- Steven Jones Computing & Communications 354843, University of Washington E-mail: noyd@u.washington.edu Phone: (206) 543-5852On Wed, 24 Sep 1997, Adam Ith wrote:
> I don't know if you're the one to deal with this, but the account ragusin > on homer had its password changed yesterday and still wasn't able to egt > in today.
Have the person change their password again.